Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- *filter
- :INPUT DROP
- :FORWARD DROP
- :OUTPUT ACCEPT
- -A INPUT -i lo -j ACCEPT
- -A INPUT -p tcp -m tcp ! --tcp-flags FIN,SYN,RST,ACK SYN -m state --state NEW -j DROP
- -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 21 -m state --state NEW -j ACCEPT
- -A INPUT -p tcp --dport SOME PORT NUMBER --syn -m limit --limit 1/m --limit-burst 3 -j ACCEPT
- -A INPUT -p tcp --dport OME PORT NUMBER --syn -j DROP
- -A INPUT -p tcp -m tcp --dport OME PORT NUMBER -m state --state NEW -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 80 -m state --state NEW -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 443 -m state --state NEW -j ACCEPT
- -A INPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
- -A INPUT -p icmp -m icmp --icmp-type 11 -j ACCEPT
- -A OUTPUT -o lo -j ACCEPT
- COMMIT
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
